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DETAILED ACTION 

1 . This office action is in response to applicant's response filed on 01/26/2004. 

2. Claims 9 and 1 0 are new claims and pending. 

3. Claims 1-8 are amended and pending. 

Response to Arguments 

4. Applicant, on page 8, line 9 - page 9, line 3, of the remarks, argues that claim 8 
produce useful, concrete and tangible results. 

Examiner respectfully disagrees and asserts that referring to claim 8, the claim 
invention is directed to non-statutory subject matter. The claimed subject matter 
provides a computer program product for use in a computer supporting encryption of 
information for an information management system that manages information. This 
produced result remains in the abstract and, thus, fails to achieve the required status of 
having real world value. 

5. Applicant, on page 10, lines 7-25, of the remarks, argues that Choo fails to 
disclose "a warning portion for warning the information management system that was 
found to encrypt information not in accordance with the rule by the monitoring portion to 
do encryption of information in accordance with the rule" 
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Examiner respectfully disagrees and asserts that referring to claim 1, Choo 
teaches that a warning portion for warning the information management system that 
was found to encrypt information not in accordance with the rule by the monitoring 
portion to do encryption of information in accordance with the rule [column 1 1 , lines 3- 
25 and fig. 6, the internet protocol security stack 510 warns/detects that it has not 
received a security association for transferring a particular type of data]. 

6. Examiner, however, in light of the above submission maintains the previous 
rejections while considering the amendments to the claims as follows: 

Claim Rejections - 35 USC § 112 

7. The following is a quotation of the second paragraph of 35 U.S.C. 112: 

The specification shall conclude with one or more claims particularly pointing out and distinctly 
claiming the subject matter which the applicant regards as his invention. 

8. Claims 8 and 9 is rejected under 35 U.S.C. 1 12, second paragraph, as being 
indefinite for failing to particularly point out and distinctly claim the subject matter which 
applicant regards as the invention. Claims 8 and 9 are vague and indefinite because it is 
unclear how claim 8 can recites the limitation "a computer program product" and how 
claim 9 can recite "a predetermined encryption rule". 
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Claim Rejections - 35 USC § 101 

9. 35 U.S.C. 101 reads as follows: 

Whoever invents or discovers any new and useful process, machine, manufacture, or composition of 
matter, or any new and useful improvement thereof, may obtain a patent therefor, subject to the 
conditions and requirements of this title. 

10. Claim 8 is rejected under 35 U.S.C. 101 because the claimed invention is 
directed to non-statutory subject matter. 

Claim 8 is directed initiating performance of transmitting rule information, 
receiving process information, monitoring the encryption of information and warning the 
information management system. 

This claimed subject matter lacks a practical application of a judicial exception 
(law of nature, abstract idea, natural occurring phenomenon) since it fails to produce a 
useful, concrete and tangible result. 

Specifically, the claimed subject matter doesn't produce tangible result because 
the claimed subject matter fails to produce a result that is limited to having real world 
value rather than a result that may be interpreted to be abstract in nature as, for 
example a computer program. More specifically, the claimed subject matter provides a 
computer program product for use in a computer supporting encryption of information 
for an information management system that manages information. This produced result 
remains in the abstract and, thus, fails to achieve the required status of having real 
world value. 
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Claim Rejections - 35 USC § 102 

1 1 . The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in,this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public 
use or on sale in this country, more than one year prior to the date of application for patent in the United 
States. 

12. Claims 1, 3 and 5-10 are rejected under 35 U.S.C. 102(b) as being anticipated by 
Choo Patent No. US 6,981,140. 

Referring to claims 1, 5, 6 and 8-10, Choo teaches a security system comprising 
an information management system (equivalent to "second memory area/user 
space/user memory", 201 in fig. 2 and column 1, lines 39-49) that manages information 
and an encryption support system (equivalent to "first memory area/Kernel space or 
Kernel/operating system (OS)") that supports encryption of information in the 
information management system, 

the encryption support system including: 

an encryption rule storing portion that stores rule information that indicates an . 
encryption rule of the information for each secret level that is a level of wanting to keep 
information secret [column 11, lines 3-6; security policy database 602 in fig. 6, 
inherently stores an encryption rule], 
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an encryption data transmitting portion that transmits encryption data that is 
necessary for encrypting information in accordance with the rule to the information 
management system [column 6, lines 18-19; column 10, line 65 - column 11, line 3; 
fig. 6; transmit data after "checked by the internet protocol security stack 510 against a 
security policy database 602" which is equivalent to rule information], 

a process information receiving portion that receives process information that 
indicates the encryption process performed by the information management system 
from the information management system [column 6, lines 20-25, the encryption data 
is processed in second memory area which is inherently in the information management 
system; wherein the first memory area is equivalent to the encryption support system is 
receiving processed information], 

a monitoring portion that monitors whether or not the encryption of information is 
performed in accordance with the rule by the information management system on the 
basis of the process information received from the information management system, 
and [column 10, line 65 - column 11, line 25; column 13, lines 14-20 and fig. 10; the 
internet protocol security stack 510 in fig. 6 is corresponding to the monitoring portion 
for monitoring whether the encrypted data received is processed according to the 
rule/policy prior to transmission]. 

a warning portion that warns the information management system that was found 
to encrypt information not in accordance with the rule by the monitoring portion to do 
encryption of information in accordance with the rule, and [column 11, lines 3-25 and 
fig. 6; the internet protocol security stack 510 in fig. 6 (equivalent to a warning portion 
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as well) detects and warns "an Internet Key Exchange (IKE) block 604, in fig. 6" which 
resides in the user memory (i.e., information management system) that the encrypted 
information found is not in accordance with the rule]. 

the information management system (equivalent to "second 
memory area/user space/user memory", 201 in fig. 2 and column 1, lines 39-49) 
including: 

an encryption data receiving portion that receives the encryption data from the 
encryption support system [column 6, lines 3-5], 

a classification secret level storing portion that stores classification of information 
managed by the information management system in connection with the secret level for 
each of the classification [column 11, lines 3-6; a classification secret level is 
equivalent to a data packet (i.e., an encryption data) strored ih a security policy 
database 602 which describing a security policy inherently the secret level for the 
classification], 

an encrypting portion that encrypts information managed by the information 
management system by using the encryption data of the secret level corresponding to 
the classification of the information received by the encryption data receiving portion 
[column 6, lines 20-25], 

an information storing portion that stores the information encrypted by the 
encrypting portion, and 

a process information transmitting portion that transmits the process information 
about the encryption performed by the encrypting portion to the encryption support 



Application/Control Number: 10/763,275 Page 8 

Art Unit: 2134 

system [column 10, line 63-column 11, line 19; teaches everything the same as the 
encryption support system (see above) which is vice versa, "the data is packetized and 
redirected via the redirector layer within the network protocol stack to the software port 
509"]. 

Referring to claim 3, Choo further teaches, wherein the information management 
system includes: 

a classification secret level transmitting portion that transmits classification 
secret level information that indicates classification of information managed by the 
information management system and the secret level corresponding to the classification 
to the encryption support system [column 6, lines 18-19; column 10, line 65 - column 
11, line 25 and fig. 6, a classification secret level is equivalent to a data packet, which 
is corresponding to an encryption data], and 

the monitoring portion performs the monitoring by comparing the process 
information received from the information management system with the classification 
secret level information [column 10, line 65 - column 11, line 25]. 

Referring to claim 7, Choo teaches a security system, further comprising a 
validity monitoring portion (internet protocol security stack 510) that monitors validity of 
an encryption rule that is used currently in accordance with vulnerability information 
about vulnerability of security received from a security information providing portion 
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[column 10, line 65 - column 11, line 25; for transferring information, it should be 
checked by the internet protocol security stack 510 validates and checks the security 
policy of the information to be transmitted/received], wherein the transmitting portion 
transmits the encryption data for changing the rule appropriately to the information 
management system if it is decided that the encryption rule that is used currently has 
little validity [column 6, lines 18-19; column 10, line 65 - column 11, line 25; fig. 6.; 
for transmitting the encryption data if the data has not received a security 
association/security, an Internet Key Exchange(IKE) block 604 initiate a negotiation 
procedure with a corresponding respective internet keying agent which inherently 
changing the rule appropriately if the encryption rule that is used currently has little 
validity]. 

Claim Rejections - 35 USC § 103 

1 3. The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 

obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

14. The factual inquiries set forth in Graham v. John Deere Co., 383 U.S. 1 , 148 
USPQ 459 (1966), that are applied for establishing a background for determining 
obviousness under 35 U.S.C. 103(a) are summarized as follows: 
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1 . Determining the scope and contents of the prior art. 

2. Ascertaining the differences between the prior art and the claims at issue. 

3. Resolving the level of ordinary skill in the pertinent art. 

4. Considering objective evidence present in the application indicating 
obviousness or nonobviousness. 

15. Claim 2 is rejected under 35 U.S.C. 103(a) as being unpatentable over Choo US 
Patent No. US 6,981,140 in view of litsuka et al. US Patent No. 6,463,151. 

Referring to claim 2, Choo teaches a security system comprising an information 
management system for managing information. Choo further teaches an encryption 
support system for supporting encryption of information in the information management 
system [see claim 1 above]. Choo does not explicitly teach a security system, 
wherein the rule information indicates the rule including an encryption system that is 
used for encryption and a valid term of an encryption key that is used for the encryption. 
However, litsuka teaches a security system, wherein the rule information indicates the 
rule including an encryption system that is used for encryption and a valid term of an 
encryption key that is used for the encryption, 

if a period since the information management system encrypted information until 
the present time exceeds the valid term relevant to the rule of the secret level 
corresponding to the classification of the information [column 3, lines 56-62 and fig. 4, 
update the type of encryption by time scale according to a change over information/data 
i.e., copy one generation, copy freely and copy-prohibited (column 4, lines 45-50)], 

the warning portion warns the information management system [column 9 f lines 
18-35; column 12, line 63-column 13, line 8 and figs. 2 and 4; in-transition mode (01 
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is assigned in fig. 4) is equivalent to the warning portion warns/notifying the timing for . 
changing over the key or encryption which inherently teaches a period or time should 
not be exceeds the valid term relevant to the rule of the secret level], 

if the encryption system that is indicated in the rule information is changed, 
the encryption data transmitting portion transmits the encryption data for 
performing encryption with the changed encryption system to the information 
management system [column 4, lines 33-39; after update the type of encryption by 
time scale according to a change over information/data, transmission of encryption data 
will take place], 

the warning portion warns to perform encryption of information in accordance 
with the changed encryption system [column 9, lines 18-35; column 12, line 63- 
column 13, line 8 and figs. 2 and 4; in-transition mode (01 is assigned in fig. 4) is 
equivalent to the warning portion warns/notifying the timing for changing over the key or 
encryption which inherently teaches a period or time should not be exceeds the valid 
term relevant to the rule of the secret level]. 

Accordingly, it would have been obvious to one having ordinary skill in the 
art at the time of the invention to modify the method of Choo to incorporate a valid term 
of an encryption key that is used for the encryption of litsuka because determining a key 
which is used for the encryption applied to transmitted data is changed depending on 
the content of copy management information for the data. Thus, the transmitted data 
can be further securely protected. 
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16. Claim 4 is rejected under 35 U.S.C. 103(a) as being unpatentable over Choo US 
Patent No. US 6,981,140 in view of Albrecht et al US Patent No. 6,510,521. 

Referring to claim 4, Choo teaches a security system comprising an information 
management system that manages information. Choo further teaches an 
encryption support system that supports encryption of information in the information 
management system [see claim 1 above]. Choo does not explicitly teach the security 
system comprising a valid term managing portion that manages a valid term of a 
certification for affixing an electronic signature to information. However, Albrecht 
teaches a security system comprising a valid term managing portion that manages a 
valid term of a certification for affixing an electronic signature to information, wherein 

the monitoring portion monitors whether or not it is necessary to reaffix the 
electronic signature to the information in accordance with the valid term of the 
certification, and [column 1, lines 35-41; "generates electronic signature and attached 
to a transferable unit of data" inherently teaches monitoring the information by reaffixing 
the electronic signature to the information in accordance with the valid term of the 
certification]. 

the warning portion warns the information management system for managing the 
information to reaffix the electronic signature if it is decided that it is necessary to reaffix 
the electronic signature [column 2, lines 57-62; the electronic signature is attached at 
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the time write data (system basic input/output service (BIOS) update, such as additions, 
deletions and modifications) is created, inherently teaches reaffix the electronic 
signature to information]. 

Accordingly, it would have been obvious to one having ordinary skill in the 
art at the time of the invention to modify the method of Choo to incorporate a valid term 
of a certification for affixing an electronic signature to information of Albrecht because 
generating and attaching electronic signature to a transferable unit prevents 
unauthorized write access to a protected storage such as FLASH mamory. 

Conclusion 

1 7. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Yonas Bayou whose telephone number is 571-272- 
7610. The examiner can normally be reached on m-f,7:30-5:00. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kambiz Zand can be reached on 571-272-381 1. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 



Yonas Bayou 
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